API Manager FAQs

Q: Is there any limit on the number of API Instances created in API Manager for an Org/Environment?
Ans: There are no hard limits set on this. 

Q: Is there any limit on the number of API Instances added in API Group Instance?
Ans: Currently 100 API Instances that can be added in API Group Instance. This limit is set because of the complexity of managing an API Group.

Q: Is there any limit on the number of API Alerts created for an API Instance?
Ans:

• Anypoint Integration Starter Package: 6 basic alerts per API instance
• Anypoint Integration Advanced Package: 10 basic alerts per API instance
• Gold Subscription: 6 basic alerts per API instance
• Platinum Subscription: 6 basic alerts per API instance
• Titanium Subscription: 10 basic alerts per API instance

Q: Is there any limit on the number of Client Applications that can request access to an API Instance?
Ans: There is no hard limit set on this. Refer to the knowledge article https://help.salesforce.com/s/articleView?id=What-is-the-Maximum-Number-of-Client-Applications-that-Can-Request-Access-to-a-Particular-API-Instance&type=1&language=en_US

Q: Is there any limit on the number of API Contracts created for a single Client Application?
Ans: There are no hard limits set on this. 

Q: When applying SLA Tiers for an API specifying the number of requests per minute is the SLA request limit applies to per worker or all workers in CloudHub?
Ans: This SLA limit is applied per worker.

Q: Does the Custom policy created in Master Org available to apply to an API Instance within the Business Group?
Ans: No it is not available for Business Group. Refer to the knowledge article https://help.salesforce.com/s/articleView?id=Custom-Policies-created-in-the-master-Business-Group-are-not-available-in-the-sub-Business-Groups&type=1&language=en_US

Q: When the Auto-discovery element is configured, does the application communicate to API Manager using HTTPS or WebSocket?
Ans: It uses HTTPS to communicate to API Manager for pairing.

Q: What is the ClientApplications limit per Org?
Ans: Currently the limit is 10000 clients per org. 

Q. Are both the Client ID and Client Secret of the Client Application encrypted on the platform?
Ans: No. Only Client Secrets are encrypted when stored at rest in the platform.

Q: Is it possible to re-order Automated policies?
Ans: With the current design, it is not possible to re-order Automated Policies. Automated Policies are evaluated in the order that is applied.

Q.: What is the relationship between Automated Policies that use External Provider and an API instance.
 Ans: Please refer to doc. From the doc: "As an administrator, you can apply policies specific to external identity providers (IdPs, such as OpenID) if the environment to which you want to apply policies includes them. The policy is then enforced only on those APIs that have the same IdPs configured."

Disclaimer: For the limits where there is no hard-limit set, please exercise common sense as it might be too hard to manage effectively depending on the scenario. 
Also, MuleSoft reserves the right to change these limits as and when it considers fit to support the product features.